← volver
CVE-2022-1663

Stop Spam Comments <= 0.2.1.2 - Access Token Bypass

EPSS 0.5%CWE-200
The Stop Spam Comments WordPress plugin through 0.2.1.2 does not properly generate the Javascript access token for preventing abuse of comment section, allowing threat authors to easily collect the value and add it to the request.
Productos afectados
Unknown · Stop Spam Comments

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/30820be1-e96a-4ff6-b1ec-efda14069e70